[Webkit-unassigned] [Bug 37443] CSSStyleSelector should pass through origin information when determined if link visited
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Apr 12 09:02:15 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=37443
--- Comment #6 from Daniel Clifford <danno at chromium.org> 2010-04-12 09:02:14 PST ---
Yes, it is desirable to have this extra information. My understanding of
dhyatt's patch is that it does effectively prevents a whole class of
programatic (JavaScript) attacks, but it isn't bulletproof. As long as links
are visibly colored in a way that doesn't strictly honor same origin, then
there social engineering attacks that are still possible. phishing.evil.com
could create a page with links to the 20 most popular banking sites, where the
unvisited color is the page background and the visited color is blue, all of
this with some displayed text that is unrelated to banking that seems to be for
some other purpose. You only see the link of the URL that is also in your
history, that's the one you click on, at which point evil.com know's which bank
you use.
Admittedly, these are attacks are probably less effective to do on a
large-scale. However a same-origin policy like SafeHistory still provides extra
protection for users who are willing to sacrifice a bit of usability for
privacy. The idea would be that it is off by default but can be activated as a
preference.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list